[Secure-testing-commits] r51480 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed May 10 07:43:46 UTC 2017
Author: carnil
Date: 2017-05-10 07:43:45 +0000 (Wed, 10 May 2017)
New Revision: 51480
Modified:
data/CVE/list
Log:
Add note for CVE-2017-8855
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-10 07:43:36 UTC (rev 51479)
+++ data/CVE/list 2017-05-10 07:43:45 UTC (rev 51480)
@@ -3,6 +3,7 @@
NOTE: Fixed by: https://git.gnome.org/browse/gtk-vnc/commit/?id=f3fc5e57a78d4be9872f1394f697b9929873a737 (release-0.4.3)
CVE-2017-8855 (wolfSSL before 3.11.0 does not prevent wc_DhAgree from accepting a ...)
- wolfssl <unfixed>
+ NOTE: Fixed upstream in 3.11.0, https://github.com/wolfSSL/wolfssl/releases/tag/v3.11.0-stable
CVE-2017-8854 (wolfSSL before 3.10.2 has an out-of-bounds memory access with loading ...)
- wolfssl 3.10.2+dfsg-1
CVE-2017-8853 (Fiyo CMS v2.0.7 has an arbitrary file delete vulnerability in ...)
More information about the Secure-testing-commits
mailing list